"Communications Problem Detected" appears on machines managed by Deep Security as a Service

- Updated:
- 24 Nov 2016
- Product/Version:
- Cloud One - Workload Security All
- Deep Security As A Service
- Platform:
- CentOS 6 32-bit
- CentOS 6 64-bit
- Linux - Red Hat RHEL 5 32-bit
- Linux - Red Hat RHEL 5 64-bit
- Linux - Red Hat RHEL 6 32-bit
- Linux - Red Hat RHEL 6 64-bit
- Linux - SuSE 10 64-bit
- Linux - SuSE 11
- Linux - SuSE 11 64-bit
- Ubuntu 10.04 64-bit
- Ubuntu 12.04 64-bit
- Windows 2003 Enterprise
- Windows 2003 Enterprise 64-bit
- Windows 2003 Server R2
- Windows 2008 Server R2
- Windows 2008 Server R2 with Hyper-V(TM)
- Windows 7 32-bit
- Windows 7 64-bit
- Windows 8 32-bit
- Windows 8 64-bit
- Windows Vista 32-bit
- Windows Vista 64-bit
- Windows XP Professional
- Windows XP Professional 64-bit

Summary

There's a communication issue in Deep Security as a Service and a “Communication Problem Detected” message appears on machines managed by the service.

Details

You may encounter the message because of any or both of the following:

The computer managed by Deep Security Manager (DSM) may be unable to resolve the hostname of the computer hosting DSM.
The communication ports used by Deep Security may be blocked by a third-party firewall program.

To resolve this communication issue:

By default, Deep Security as a Service uses 'agent initiated communications'. This means that the Deep Security Agent starts all interactions with the manager. The agent will need to communicate in the following manner;
Allow the following in your firewall.
- to agents.deepsecurity.trendmicro.com on TCP port 443
- to relay.deepsecurity.trendmicro.com on TCP port 443
By default most security groups allow outbound communications. If your configuration doesn't, you'll need to make sure that all of your agents can communicate to those domains on TCP port 443.
Our user interface is available at [https://deepsecurity.trendmicro.com] which also runs on TCP port 443.